This week’s recap covers exploited flaws, supply chain attacks, phishing kits, AI lures, macOS stealers, urgent CVEs, tools, ...

The JDY botnet, a malware network previously associated with Chinese threat actors like Volt Typhoon, has significantly expanded its targeting scope and reconnaissance efforts.

I've reviewed every PDF editor out there - then I had ChatGPT build me a better one ...

Over 100 NPM and PyPI packages were injected with malicious code in the Miasma and Hades Shai-Hulud supply chain attack ...

JDY grew from 650 to 1,500+ devices after KV-botnet's takedown, enabling rapid reconnaissance and vulnerability targeting.

A backdoor used by a China-aligned espionage group has expanded from Linux to Windows, gaining a kernel-level stealth layer ...

Our tracking of OceanLotus activities from 2024–2026 reveals a shift in operational focus. During this period, the Vietnam-aligned OceanLotus adopted a more selective approach to external operations ...

The JDY botnet, linked to China's Volt Typhoon, has doubled in size and now scans for newly disclosed vulnerabilities within hours. Most nodes are in the US.

For as long as police officers and other first responders have been communicating with each other over the radio, there have been enthusiasts and other casual listeners eavesdropping on them using ...